From a3e8e1779e8d6d169ebcf05f72cd2da8dd8a1947 Mon Sep 17 00:00:00 2001
From: Bernhard Millauer <SeriousM@users.noreply.github.com>
Date: Tue, 14 Apr 2026 01:43:03 +0200
Subject: [PATCH] Add BETTER_AUTH_TRUSTED_ORIGINS environment variable

Every registration and login attempt will fail with "invalid origin" error message and the log message "ERROR [Better Auth]: Invalid origin: public-url.com"

Setting the BETTER_AUTH_TRUSTED_ORIGINS allows the validation to pass.

Using BETTER_AUTH_URL is no option as it's set by NEXT_PUBLIC_BASE_URL which in turn is set to http://localhost:3000 by the build docker image.
---
 templates/compose/rallly.yaml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/templates/compose/rallly.yaml b/templates/compose/rallly.yaml
index 0dfc84c56a..63c850d189 100644
--- a/templates/compose/rallly.yaml
+++ b/templates/compose/rallly.yaml
@@ -41,6 +41,7 @@ services:
       - SMTP_USER=${SMTP_USER}
       - SMTP_PWD=${SMTP_PWD}
       - SMTP_TLS_ENABLED=${SMTP_TLS_ENABLED}
+      - BETTER_AUTH_TRUSTED_ORIGINS=${SERVICE_URL_RALLLY}
     healthcheck:
       test: ["CMD-SHELL", "bash -c ':> /dev/tcp/127.0.0.1/3000' || exit 1"]
       interval: 5s